"The right tool for the right job." That is the reason Black Hat created the Arsenal to the USA event, an area in which Free and OpenSource tool authors could show off their wares. This webcast features three of the most popular tools and their authors:
Armitage is a red team collaboration tool built on the open source Metasploit Framework. Released in December 2010, Armitage has seen constant updates and improvements since its inception--updates and improvements driven by feedback from its wonderful user community. This demo will show how Armitage works and dive into some of the lesser known features that are quite handy for penetration testers.
ThreadFix is an open source software vulnerability aggregation and management system that allows software security teams to reduce the time it takes to fix software vulnerabilities. ThreadFix imports the results from dynamic, static and manual testing to provide a centralized view of software security defects across development teams and projects. ThreadFix empowers managers with vulnerability trending reports that demonstrate software security progress over time.
As smartphones enter the workplace, sharing the network and accessing sensitive data, it is crucial to be able to assess the security posture of these devices in much the same way we perform penetration tests on workstations and servers. However, smartphones have unique attack vectors that are not currently covered by available industry tools.
Brian Smith is the CTO and Co-Founder of Click Security. Previously, Brian co-founded TippingPoint Technologies in 2001. He was TippingPoint's Chief Architect from 2001-2009 and Chief Technology Officer in 2009.